none
Lync 2010 login for machines not in domain

    Question

  • Hi

    I have deployed Lync Server in my datacenter. Most of the computers are connected to the domain. But few are not part of the domain. While trying to connect Lync Server on non-domain computers I am facing errors as Lync Client is unable to connect to the Lync Server. Can you please let me know how to connect Lync in non-domain computers. All these non-domain computers are part of the local network. 

    I have only Front-end servers installed and there is no Edge Server running in the network. Please help. 

    Thanks 

    Avijit Chakraborty


    This posting is provided "AS IS" with no warranties and confers no rights! Always test ANY suggestion in a test environment before implementing! Thanks & Regards Avijit Chakraborty (MCP, MCSA, MCSE, MCSA(M), MCITP Ent.Admin, MCTS (SCCCM, SCOM, HyperV,)

    Friday, June 08, 2012 4:10 AM

Answers

  • The workgroup members should still be able to sign in. I suspect that you're probably using an internal certificate authority and that the workgroup PCs don't trust the root CA. This blog will walk you through installing the root authority: http://www.sqlservermart.com/HowTo/Windows_Import_Certificate.aspx

    Other things to check is that the workgroup PCs are using the same DNS servers, and that you have relaxed the NTLM requirements (if the clients are XP/Vista): http://uctipe.typepad.com/mijn-blog/2012/03/lync-2010-ntlm-client-authentication-mismatch.html
    Friday, June 08, 2012 5:13 AM

All replies

  • The workgroup members should still be able to sign in. I suspect that you're probably using an internal certificate authority and that the workgroup PCs don't trust the root CA. This blog will walk you through installing the root authority: http://www.sqlservermart.com/HowTo/Windows_Import_Certificate.aspx

    Other things to check is that the workgroup PCs are using the same DNS servers, and that you have relaxed the NTLM requirements (if the clients are XP/Vista): http://uctipe.typepad.com/mijn-blog/2012/03/lync-2010-ntlm-client-authentication-mismatch.html
    Friday, June 08, 2012 5:13 AM
  • Hi Tom

    I am trying to do this in a Windows 7 machine. I have imported the certificate as described in the link. But still while login it is giving an error " There was a problem verifying the certificate from the server" I checked from the CA mmc that the Personal certificate for that particular user is not present. Can you please help. 

    Thanks

    Avijit


    This posting is provided "AS IS" with no warranties and confers no rights! Always test ANY suggestion in a test environment before implementing! Thanks & Regards Avijit Chakraborty (MCP, MCSA, MCSE, MCSA(M), MCITP Ent.Admin, MCTS (SCCCM, SCOM, HyperV,)

    Friday, June 08, 2012 6:23 AM
  • 1st export your root certificate from domain computer from trusted root certificates,

    2nd import this certiifcate in nondomain computer in trusted root certificates in computer configuration.

    to ensure that you did everything right,

    check

    export lync fe certificate from lync fe without private key, copy this certificate to nondomain computer and open it , if certificate is trust every thing is right and after restart computer error will not be appear, if it is not trust it means that you did not import root chain right.

    Special For you I wrote post http://lync.community.ge/post/2012/06/10/How-to-connect-lync-from-internal-network-from-nondomain-computer.aspx

    Saturday, June 09, 2012 1:58 PM
  • Hi,

    1. Download the CA certificate chain and add it into local client computer.

    2. Add the DNS entry in host file on client computer.

    3. Manual configure the Internal server name or IP address.

    For your reference:

    http://jackiechen.org/2011/12/05/configure-lync-client-in-non-domain-computers/


    Regards,

    Kent Huang

    TechNet Community Support ************************************************************************************************************************

    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question.


    • Edited by Kent-Huang Monday, June 11, 2012 5:31 AM
    • Proposed as answer by Kent-Huang Thursday, June 14, 2012 1:46 AM
    Monday, June 11, 2012 5:31 AM
  • Hi Avijit,
    Is there any update on the issue? If you have fixed the issue, please kindly share the solution with us.


    Regards,

    Kent Huang

    TechNet Community Support ************************************************************************************************************************

    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question.


    • Edited by Kent-Huang Thursday, June 14, 2012 1:45 AM
    • Proposed as answer by Kent-Huang Thursday, June 14, 2012 1:45 AM
    • Unproposed as answer by Kent-Huang Thursday, June 14, 2012 1:46 AM
    Thursday, June 14, 2012 1:45 AM